diff --git a/hack/make-rules/test.sh b/hack/make-rules/test.sh
index d58bc929752..e9074678a8f 100755
--- a/hack/make-rules/test.sh
+++ b/hack/make-rules/test.sh
@@ -140,6 +140,7 @@ eval "testargs=(${KUBE_TEST_ARGS:-})"
 # Used to filter verbose test output.
 go_test_grep_pattern=".*"
 
+goflags=()
 # The junit report tool needs full test case information to produce a
 # meaningful report.
 if [[ -n "${KUBE_JUNIT_REPORT_DIR}" ]] ; then
diff --git a/hack/make-rules/vet.sh b/hack/make-rules/vet.sh
index a8b2ab3ada9..160d704e8f9 100755
--- a/hack/make-rules/vet.sh
+++ b/hack/make-rules/vet.sh
@@ -25,6 +25,7 @@ cd "${KUBE_ROOT}"
 
 # Filter out arguments that start with "-" and move them to goflags.
 targets=()
+goflags=()
 for arg; do
   if [[ "${arg}" == -* ]]; then
     goflags+=("${arg}")
diff --git a/hack/verify-shellcheck.sh b/hack/verify-shellcheck.sh
index 258c1831169..cae65592aad 100755
--- a/hack/verify-shellcheck.sh
+++ b/hack/verify-shellcheck.sh
@@ -30,9 +30,8 @@ DOCKER="${DOCKER:-docker}"
 
 # required version for this script, if not installed on the host we will
 # use the official docker image instead. keep this in sync with SHELLCHECK_IMAGE
-SHELLCHECK_VERSION="0.7.1"
-# upstream shellcheck latest stable image as of October 23rd, 2019
-SHELLCHECK_IMAGE="docker.io/koalaman/shellcheck-alpine:v0.7.1@sha256:d6147f30864ddb7c9cf983fc277d345bc315e798e309ddf70062b194843ee252"
+SHELLCHECK_VERSION="0.7.2"
+SHELLCHECK_IMAGE="docker.io/koalaman/shellcheck-alpine:v0.7.2@sha256:ce6fd9cc808a47d1d121ba92c203ecc02e8ed78e0e4c412f7fca54c2e954526d"
 
 # disabled lints
 disabled=(